How to know if a file has 'access' monitor in linux?

Configuring vsftpd on Redhat Linux v9.0

• I have installed Redhat Linux version 9 and am new to Linux. I want to set up a secure ftp server to allow authenticated users to add files (specifically html files) to certain directories on the filesystem. I require help to securely configure vsftpd that comes standard with RH9.0, which is version 1.1.3-8. Specifically, - I do not want to allow anonymous access. I have found where to disable this in the configuration file - is that all I need to do? - I want certain ids to access certain directories on the filesystem and be automatically directed there when they log in via ftp. I hope that makes sense. I have found the vsftpd.conf configuration file and need to know what changes I need to make to this file in order to achieve my desired outcome. A step by step guide around the persmissions I need to set when I create the new user, and any other settings I need to set, would be a great help. Please advise if you require further clarification. Thank you.

• Answer:

  Hi jamieda!! Thank for let me answer your question. Firsts steps on Very Secure FTP Daemon (vsftpd) can be found at the following page: "Linux FTP Server Setup": http://www.linuxhomenetworking.com/linux-hn/ftp-server.htm This page will provide you with guidelines, parameters definitions and examples on basic configuration of the FTP server. Summing up you will learn that these firsts steps are something like this: - Change the /etc/vsftpd.conf as recommended to disable anonymous access - Create a group called 'ftp-users' - Create the shared directory I want to be root - Change the permissions to 774 - wrx for owner and group but -rx for anonymous - Change the owner of the group to ftp-users - I create the users and add them to group 'ftp-users' and set the root to the shared directory - Copy the files to be shared into the shared directory - Change the owner and group of the shared files - Change the permissions of the shared files to 774 - Add the new users to the /etc/vsftpd.ftpusers file More related info will be found at the following pages: vsftpd: http://vsftpd.beasts.org/ Example config file /etc/vsftpd.conf: Linux Home Networking PDF Topics: http://www.linuxhomenetworking.com/index.htm#Linux Setting Up FTP: http://rimuhosting.com/support/microhowtolist.jsp#ftp Controlling Access to Your Services with xinetd: http://www.linuxplanet.com/linuxplanet/tutorials/4505/4/ --------------------------------------------- If you want to go further with the restriction of the FTP access to certain users and/or to certain directories, you must read the following: "How do I limit where a user can go with vsftpd? By default the users have access to all the system. If you want to jail the users in order to restrict the directories access, it can be easily do by (adding) the parameter chroot_local_user which will enable the function chroot() and the parameter chroot_list_file which will stablish the file with the list of users that will be excluded from the function chroot() chroot_local_user=YES chroot_list_file=/etc/vsftpd.chroot_list With the previous thing, each time that a local user be authenticated in the FTPserver, he will have access only to its own personal folder and what it contains." Summarized and traslated from spanish from the page: "Cómo configurar vsftpd (Very Secure FTP Daemon)" (How to configure vsftpd): http://www.linuxparatodos.com/linux/09-como-vsftpd.php In other words: You may specify an explicit list of local users to chroot() to their home directory. If chroot_local_user is YES, then this list becomes a list of users to NOT chroot(). chroot_list_enable=YES chroot_list_file=/etc/vsftpd.chroot_list The file /etc/vsftpd.chroot_list must contain the list of jailed users. chroot_list_enable=YES makes it so that only those listed in a file are jailed. You can specifiy the location of the list-file via the chroot_list_file= option in vsftpd.conf Another choice is to comment out the above option and use chroot_local_user=YES which means everyone not on the list is jailed. The following pages will help you: vsftpd: http://freshmeat.net/projects/vsftpd/?topic_id=89 FTP Server: German version (original version): http://www.linuxfibel.de/printversion/ftp_srv.htm Translation powered by WorldLingo http://www.worldlingo.com/wl/mstranslate/UP26384/T1/P2/l/microsoft/computer_translation.html?wl_lp=DE-EN&wl_fl=0&wl_rurl=http%3A%2F%2Fhttp%3A%2F%2Fwww.linuxfibel.de%2Fprintversion%2Fftp_srv.htm%2F&wl_url=http%3A%2F%2Fwww.linuxfibel.de%2Fprintversion%2Fftp_srv.htm&wlg_table=-3 Firewall Wizards: RE: OT: FTP Servers: http://lists.insecure.org/lists/firewall-wizards/2003/Jun/0064.html "vsftpd.conf(5) - Linux man page" (NEW!!): http://www.die.net/doc/linux/man/man5/vsftpd.conf.5.html Again, thank you for let me answer your question, and I will be alert to catch and post any new info related that I will find. Best Regards. livioflores-ga